feishuFindDoc
Security checks across static analysis, malware telemetry, and agentic risk
Overview
The skill mostly matches its purpose, but it saves Feishu-provided filenames directly to disk, which could write outside the intended download folder.
Review before installing. Use a limited Feishu app credential and run the tool only for chats/files you intend to access. Avoid downloading into sensitive directories until the filename handling is fixed, because a crafted chat filename could cause the saved file to land outside the requested folder.
Static analysis
No static analysis findings were reported for this release.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A malicious or malformed file shared in the chat could cause the downloaded content to be saved somewhere other than the folder the user intended.
The local save path uses the filename from Feishu chat content directly. If that filename contains '../' or path separators, the write may escape the selected output directory or overwrite unintended local files.
const fileName = content.file_name; ... const outputPath = path.join(options.output, fileName); ... await fs.promises.writeFile(outputPath, dataToWrite);
Sanitize filenames before writing: use a basename-only filename, reject absolute paths and '..' segments, resolve the final path, verify it stays inside the output directory, and prompt before overwriting existing files.
Running the skill gives it whatever Feishu API access the supplied app credentials have, including access to chat message metadata and downloadable files within that app's permissions.
The skill requires Feishu app credentials to list chat messages and download message resources. This is expected for the stated integration, but the registry metadata does not declare required environment variables or a primary credential.
- `FEISHU_APP_ID` and `FEISHU_APP_SECRET` must be set in environment.
Use least-privilege Feishu app credentials, restrict the app's chat/file access where possible, set the environment variables only when needed, and update metadata to declare the required credentials.
Installing the skill may fetch newer compatible dependency versions from npm, which can change behavior or inherit dependency supply-chain risk.
The skill depends on external npm packages with caret version ranges. This is purpose-aligned for a Node-based Feishu CLI, but installs are not pinned by a lockfile in the provided artifacts.
"dependencies": { "commander": "^12.0.0", "@larksuiteoapi/node-sdk": "^1.26.0" }Install in a controlled environment, review dependency provenance, and prefer a checked-in lockfile or pinned versions for reproducible installs.